|
BetterAuth: Web Authentication Revisited
Date: December 2012 Publication: 28th Annual Computer Security Applications Conference, ACSAC '12 Page(s): 169 - 178 Publisher: ACM Source 1: https://www.acsac.org/2012/openconf/modules/request.php?module=oc_program&action=view.php&a=&id=92&type=4 Source 2: http://dx.doi.org/10.1145/2420950.2420977 - Subscription or payment required Abstract or Summary:
This paper presents "BetterAuth", an authentication protocol for Web applications. Its design is based on the experiences of two decades with the Web. BetterAuth addresses existing attacks on Web authentication, ranging from network attacks to Cross-site Request Forgery up to Phishing. Furthermore, the protocol can be realized completely in standard JavaScript. This allows Web applications an early adoption, even in a situation with limited browser support. Do you have additional information to contribute regarding this research paper? If so, please email siteupdates@passwordresearch.com with the details.
<-- Back to Authentication Research Paper Index |